Merged
Conversation
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
Collaborator
Author
This stack of pull requests is managed by Graphite. Learn more about stacking. |
eluce2
force-pushed
the
fix-typegen-default-api-key-auth
branch
from
e3b43f8 to
84e986d
Compare
eluce2
force-pushed
the
01-07-update_release_ci
branch
from
6a70a24 to
c0c79ca
Compare
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
|
|
||
| release: | ||
| name: Release | ||
| needs: [quality] |
There was a problem hiding this comment.
Missing npm authentication token breaks package publishing
High Severity
The NODE_AUTH_TOKEN environment variable was removed from the changesets/action step. Since actions/setup-node is configured with registry-url: "https://registry.npmjs.org", it creates an .npmrc that expects NODE_AUTH_TOKEN for authentication. Without this secret (previously set to ${{ secrets.NPM_ACCESS_TOKEN }}), the pnpm release command will fail when attempting to publish packages to npm with an authentication error.
Collaborator
Author
eluce2
changed the base branch from
fix-typegen-default-api-key-auth
to
graphite-base/97
eluce2
force-pushed
the
01-07-update_release_ci
branch
from
7a5b665 to
e0cc7d3
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Note
Introduces stricter quality gates and centralizes environment management while refining type handling across packages.
continuous-releaseintolint,typecheck,test(incl. 1Password +@proofkit/fmodataE2E), andbuild;release.ymladds manual trigger, TURBO env, and aqualityjob gating publishop.env; removes per-packageop.envand updates scripts to reference../../op.envtypecheckscripts across packages and a Turbotypechecktask; bumpsturboandpnpm; small lint script tweaksenvFile(defaults to.env); fixes category typing; improves provider wrapping typestype: "fmdapi"), narrows types toFmdapiDataSourceConfig, and filters ops by typeshadcntype imports with local lightweight schemas; updatesregistrypackage scriptstype: "fmdapi"and explicitenvNames: undefinedWritten by Cursor Bugbot for commit e0cc7d3. This will update automatically on new commits. Configure here.